AbstractsComputer Science

Calculating malware severity rating using threat tree analysis

by Asheer Malhotra

Institution: Mississippi State University
Department: Computer Science and Engineering
Degree: MS
Year: 2015
Keywords: rating; attack trees; threat trees; malware
Record ID: 2062628
Full text PDF: http://sun.library.msstate.edu/ETD-db/theses/available/etd-03202015-153316/


Malware analysts and researchers around the world are looking for innovative means of malware detection and classification. However, one concept of malware analysis that lacks focus is the rating of malware based on their feature set and capabilities. Malware severity rating is needed in order to prioritize the utilization of resources towards the analysis of a malware by an organization. This thesis proposes the utilization of threat trees for calculating malware severity using a goal oriented approach. This approach is applied to a set of sophisticated malware to study its contribution towards articulation of a useful severity rating.